Vulnerability Details CVE-2002-2140
Buffer overflow in Cisco PIX Firewall 5.2.x to 5.2.8, 6.0.x to 6.0.3, 6.1.x to 6.1.3, and 6.2.x to 6.2.1 allows remote attackers to cause a denial of service via HTTP traffic authentication using (1) TACACS+ or (2) RADIUS.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.ciac.org/ciac/bulletins/n-017.shtml
- http://www.cisco.com/warp/public/707/pix-multiple-vuln-pub.shtml
- http://www.iss.net/security_center/static/10661.php
- http://www.securityfocus.com/bid/6212
- http://www.ciac.org/ciac/bulletins/n-017.shtml
- http://www.cisco.com/warp/public/707/pix-multiple-vuln-pub.shtml
- http://www.iss.net/security_center/static/10661.php
- http://www.securityfocus.com/bid/6212
Products affected by CVE-2002-2140
-
cpe:2.3:o:cisco:pix_firewall_software:5.2
-
cpe:2.3:o:cisco:pix_firewall_software:5.2(1)
-
cpe:2.3:o:cisco:pix_firewall_software:5.2(2)
-
cpe:2.3:o:cisco:pix_firewall_software:5.2(3)
-
cpe:2.3:o:cisco:pix_firewall_software:5.2(4)
-
cpe:2.3:o:cisco:pix_firewall_software:5.2(5)
-
cpe:2.3:o:cisco:pix_firewall_software:5.2(6)
-
cpe:2.3:o:cisco:pix_firewall_software:5.2(7)
-
cpe:2.3:o:cisco:pix_firewall_software:5.2(8)
-
cpe:2.3:o:cisco:pix_firewall_software:6.0
-
cpe:2.3:o:cisco:pix_firewall_software:6.0(1)
-
cpe:2.3:o:cisco:pix_firewall_software:6.0(2)
-
cpe:2.3:o:cisco:pix_firewall_software:6.0(3)
-
cpe:2.3:o:cisco:pix_firewall_software:6.1
-
cpe:2.3:o:cisco:pix_firewall_software:6.1(1)
-
cpe:2.3:o:cisco:pix_firewall_software:6.1(2)
-
cpe:2.3:o:cisco:pix_firewall_software:6.1(3)
-
cpe:2.3:o:cisco:pix_firewall_software:6.2
-
cpe:2.3:o:cisco:pix_firewall_software:6.2(1)